• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 271
  • Last Modified:

Firewalling through Linuxconf

I was just playing with Linuxconf, and I noticed that it is possible to set up IP routing rules through it, instead of manually putting "ipchains" statements in rc.local. Now I just need to find out where does Linuxconf put this information?
0
tibori
Asked:
tibori
  • 2
  • 2
1 Solution
 
jlevieCommented:
IP routing rules just specify how to get someplace. They don't provide any actual network security, for that you need ipchains and all that goes with it.
0
 
tiboriAuthor Commented:
jlevie: It is called "firewalling" and there are some of the same options as with ipchains such as masquerading, blocking packets, forwarding packets etc. Have you tried doing this before? The reason I ask is to me it seems that its just a GUI for the ipchains commands. Even if I'm wrong, all I wanted to know is which files does the "firewalling" setup under Linuxconf modify?
Thanks
0
 
jlevieCommented:
My mistake, your question asked about the about the IP routing rules, which is completely different beast from Firewalling. I've run into more than one mis-guided person who thought that playing with routing was a substitue for a firewall.

Yes it's just a GUI interface that does the same thing that that ipchains does. It modifies the contents of /proc/net/ip_fwchains and /proc/net/ip_masquerade. I'ts not clear to me how much of an advantage it is over a config file. You still have to come up with the rules and you can't see all of the rules at once the way you can if they are in a file.
0
 
castleinfoCommented:
You probably know this already but :
Most people create an rc.firewall file with all of the routing and IPCHAINS cmnds then change rc.local so that it runs the rc.firewall script.

Don't know anything about linuxconf though...
0
 
tiboriAuthor Commented:
jlevie: Thanks, but I think you're right. It just makes things more confusing. I think I will go back to the ipchains commands.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now